Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.mft
File: nmh1g4EMwAZO207-QFf1phpV5ws.mft (raw, json)
Hash identifier: KUIdh8MnTJvHKo4JtZxH4/i/18t3EGfjmww5AEBHtkY=
Subject key identifier: AC:03:C8:9F:86:70:29:D6:CB:A9:99:0E:CC:C7:54:FC:C1:54:73:73
Authority key identifier: 9E:68:75:83:81:0C:C0:06:4E:DB:4E:FE:40:57:F5:A6:1A:55:E7:0B
Certificate issuer: /CN=9e687583810cc0064edb4efe4057f5a61a55e70b
Certificate serial: 0197718876192259D1D399DE46A29CE800D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nmh1g4EMwAZO207-QFf1phpV5ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.mft
Manifest number: 0466
Signing time: Sun 15 Jun 2025 03:00:57 +0000
Manifest this update: Sun 15 Jun 2025 03:00:57 +0000
Manifest next update: Mon 16 Jun 2025 03:00:57 +0000
Files and hashes: 1: nmh1g4EMwAZO207-QFf1phpV5ws.crl (hash: SrzmiMOqwcsnZ2Y0nINj3c+VAf6ftk3Om5csUOwOL+s=)
2: qw-aF3yIkt-72WfpE7ETeHkvHMU.roa (hash: 3nZH1KB8lozx5AtSdJomkLmrFoDBz1VyVSOmQdHc1wE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.mft
rsync://rpki.ripe.net/repository/DEFAULT/nmh1g4EMwAZO207-QFf1phpV5ws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:76:19:22:59:d1:d3:99:de:46:a2:9c:e8:00:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e687583810cc0064edb4efe4057f5a61a55e70b
Validity
Not Before: Jun 15 03:00:57 2025 GMT
Not After : Jun 16 03:00:57 2025 GMT
Subject: CN=ac03c89f867029d6cba9990eccc754fcc1547373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2c:6c:f3:1b:f0:f4:73:f6:f5:6a:d2:dd:61:
06:46:72:a4:23:13:3a:8f:b9:8f:bf:4a:83:61:16:
b2:d1:dc:1b:4c:3f:6c:85:73:0e:c9:34:f9:fc:54:
7f:d7:7e:3f:1d:88:fb:1a:c1:1f:24:2f:23:12:62:
2d:04:3e:f0:61:b6:5a:15:de:ed:c5:44:b9:80:1c:
88:42:00:2b:19:c7:22:87:2e:b5:65:b4:93:ff:95:
83:a7:24:e0:ec:a4:2d:3d:dc:21:1b:d6:98:8c:f9:
95:1a:fc:6b:ea:15:4d:4d:af:70:a9:f6:3e:bf:5f:
d1:90:f4:bf:1f:dc:ab:fc:64:92:59:3d:db:bb:e0:
c9:ef:4a:b7:31:e3:54:be:bc:50:67:5a:40:51:c9:
9c:b5:57:cf:73:78:38:67:1e:7c:3b:0e:62:27:00:
5a:16:4d:e3:d5:63:4f:f7:f7:27:ff:bd:f1:4c:d9:
20:fd:ab:d4:48:8a:75:8a:18:35:95:60:d6:b4:d3:
64:ea:d3:8b:78:f8:06:ad:86:6e:2d:cb:a4:3d:8d:
04:90:61:b5:0b:5a:9c:d5:02:72:da:3f:51:fb:97:
e5:ec:ca:ce:1e:f3:c3:25:c0:56:7e:71:59:91:9d:
9a:08:e4:ab:e7:a4:22:2d:12:c7:fb:df:53:fb:16:
39:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:03:C8:9F:86:70:29:D6:CB:A9:99:0E:CC:C7:54:FC:C1:54:73:73
X509v3 Authority Key Identifier:
keyid:9E:68:75:83:81:0C:C0:06:4E:DB:4E:FE:40:57:F5:A6:1A:55:E7:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nmh1g4EMwAZO207-QFf1phpV5ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:f9:6d:7d:6c:2f:5d:dd:23:93:4b:22:6d:b9:2a:c7:5b:31:
b3:6e:8d:97:79:0d:d3:a0:d7:d8:88:95:0f:38:f1:f9:d9:9c:
7d:7f:fc:ec:61:00:0d:23:18:0c:77:59:b3:c4:ea:b9:86:82:
9d:67:44:13:a5:2f:b5:29:71:63:d7:dc:ae:87:6e:b3:56:ae:
87:17:80:ab:1a:94:19:45:41:36:96:fe:c7:70:95:57:22:57:
ae:81:84:9a:ef:75:08:ab:5c:05:4f:02:67:db:1a:19:f0:ac:
04:14:4b:f0:a8:65:59:a1:79:d4:62:6b:19:d4:0a:52:af:a1:
61:60:75:70:70:cd:cc:80:37:28:80:18:40:75:44:bf:f3:6d:
70:9e:ac:64:ab:f8:4d:9e:ee:db:4a:93:8e:ed:c7:f5:c1:46:
d6:19:58:c7:04:a1:73:67:9b:cb:2b:ae:3d:2c:4c:fc:5e:81:
7b:b3:7e:26:7f:d6:df:e4:5e:65:8f:4d:d3:b7:0b:93:8e:be:
dd:be:59:e0:c3:16:f3:1e:54:06:5e:2a:29:38:03:c6:23:f0:
a8:e2:11:19:07:3f:7a:28:83:b6:b1:3a:3d:24:d9:39:48:7c:
45:db:be:35:6c:44:aa:e4:b6:bf:b0:a4:81:37:3f:03:a2:b2:
d4:15:a2:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:10:28 2025 by rpki-client